Disaster Recovery PlanKeyComm recognizes the importance of planning ahead for
uncontrolled events that may disrupt or threaten the continuity of its service. We know
that unanticipated electronic failures can temporarily compromise our ability to serve our
customers. Consequently, the location and configuration of our primary computer center
will remain a closely guarded company secret. It is located in a low-risk area in a
non-descriptive structure that is neither recognizable nor identifiable as a KeyComm
facility. We will take similar precautions for our remote, redundant and back-up sites.
Our goal is to never have more than one hour of "system-down"
time for any single catastrophic event. Catastrophic events will trigger immediate
response by both management and technical personnel. All personnel will be fully trained
to recognize and respond to the following unanticipated and untoward events.
Primary Equipment Failure: All disk drives, CPUs, modems, routers, hubs, ramps,
switches and power supplies will have online redundant backups and/or near line
replacements. The operating system and its application software will reside on a separate
drive. All data will be segregated and located on a different hard drive. This facilitates
increased system performance as well as faster recovery from failure. Data drives will be
external for easy access. Depending on the drives’ role within the infrastructure it
will have an on-line "mirrored" backup or will be "hot swappable" with
automatic recovery. The temperature of the computer room will be kept at 60 degrees
Fahrenheit for increased equipment performance and reliability.
Localized Disruption of Phone Service: In addition to the primary computer site, KeyComm
will maintain at least one remote site capable of handling Notes replication servers. Our
primary dial-in number will be a forwarded phone number installed at one of the remote
sites. If phone service is interrupted at the primary site, the "mirrored"
backup data drive will be removed and transported to one of the remote sites. The phone
will be forwarded to the new number, thus enabling the "mirrored" backup drive
to become the new primary data drive. Estimated down time is 50 minutes or less.
Long term loss of power: All of our computer sites will have sufficient battery backup
power to sustain full operations for a minimum of 90 minutes. The primary site will also
have a gasoline-powered generator. A special low energy refrigeration unit will be in
place to provide temperature control for the computer room only. Support personnel will be
trained to sweat.
Fire and/or Flood: Since either of these events could result in a total loss of
equipment and data KeyComm will immediately respond to any hint or
suggestion of smoke, fire or water intrusion as though it were a major threat to our
servers. The following precautions and procedures will be taken:
- Separate rooms will be maintained for computer equipment and power equipment. Both rooms
will be alarmed, fully insulated and constructed to be air and watertight. Both rooms will
have individual state-of-the-art ventilation and climate control. Both rooms will be
locked at all times.
- When an alarm signals both rooms will seal and vent from outside.
- All servers will shut down customer phone lines and connect to their assigned backup
sites. Control of the servers will be taken over by the remote site and a special backup
procedure will commence. Servers will continue to backup until completed or the equipment
fails. The special backup sequence should be completed in less then 30 minutes.
- Remote sites will replicate between themselves and customer phone lines will be
reinstated. Service to customers should commence within 15 minutes at a reduced capacity.
Within two hours service will be back to normal. Total down time, less then one hour.
Intrusion, Burglary, Theft & Vandalism: While we can never be assured of safety
from criminal or malicious conduct, we can reasonably plan to avoid loss or disruption by
implementing the following procedures and business solutions:
- Our administrative offices will be configured in a standard business setting with
security and personal safety procedures in place consistent with the general computer
community.
- Our primary computer center will be located in a separate facility that is not
recognizable or identifiable as a place where valuable or important property is likely to
be kept.
- Our redundant and back-up computer center will be located in a different building and in
a different part of town. Similar precautions will be taken to disguise the facility and
keep its purpose a secret from the general public.
- All offices and facilities will be securely locked and access will be limited. Fire and
intrusion alarms will be maintained and connected to a commercial monitoring station.
. |
